From 58aa3e33bf647929bd7ab03b66901133223e506a Mon Sep 17 00:00:00 2001 From: Capa Bot Date: Thu, 24 Jun 2021 00:33:45 +0000 Subject: [PATCH] Sync capa rules submodule --- CHANGELOG.md | 6 +++++- README.md | 2 +- rules | 2 +- 3 files changed, 7 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 53226dc8..310f1a84 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -29,7 +29,7 @@ It includes many new rules, including all new techniques introduced in MITRE ATT - json: correctly render negative offsets #619 @williballenthin - library: remove logic from `__init__.py` throughout #622 @williballenthin -### New Rules (89) +### New Rules (93) - anti-analysis/packer/amber/packed-with-amber @gormaniac - collection/file-managers/gather-3d-ftp-information @re-fox @@ -119,6 +119,10 @@ It includes many new rules, including all new techniques introduced in MITRE ATT - internal/limitation/file/internal-autohotkey-file-limitation @mr-tz - host-interaction/process/dump/create-process-memory-minidump michael.hunhoff@fireeye.com - nursery/get-storage-device-properties michael.hunhoff@fireeye.com +- nursery/execute-shell-command-via-windows-remote-management michael.hunhoff@fireeye.com +- nursery/get-token-privileges michael.hunhoff@fireeye.com +- nursery/prompt-user-for-credentials michael.hunhoff@fireeye.com +- nursery/spoof-parent-pid michael.hunhoff@fireeye.com - ### Bug Fixes diff --git a/README.md b/README.md index de2f23c5..64049694 100644 --- a/README.md +++ b/README.md @@ -2,7 +2,7 @@ [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/flare-capa)](https://pypi.org/project/flare-capa) [![Last release](https://img.shields.io/github/v/release/fireeye/capa)](https://github.com/fireeye/capa/releases) -[![Number of rules](https://img.shields.io/badge/rules-575-blue.svg)](https://github.com/fireeye/capa-rules) +[![Number of rules](https://img.shields.io/badge/rules-579-blue.svg)](https://github.com/fireeye/capa-rules) [![CI status](https://github.com/fireeye/capa/workflows/CI/badge.svg)](https://github.com/fireeye/capa/actions?query=workflow%3ACI+event%3Apush+branch%3Amaster) [![Downloads](https://img.shields.io/github/downloads/fireeye/capa/total)](https://github.com/fireeye/capa/releases) [![License](https://img.shields.io/badge/license-Apache--2.0-green.svg)](LICENSE.txt) diff --git a/rules b/rules index 037169f2..30086076 160000 --- a/rules +++ b/rules @@ -1 +1 @@ -Subproject commit 037169f2bddfbf52e9b5c17db096ba141651d67c +Subproject commit 30086076974245c23806ce7089f684d64b173459